Cloud Security for SMBs

Enterprise-grade security.
Without the enterprise price tag.

Growing businesses face the same cloud threats as large enterprises — but can't justify a full-time cloud security team. Cybercrafter gives you senior-level AWS expertise on demand.

See Services Book a Free Call
Experience
18+ Years IT · 8+ Years AWS
No Lock-in
Fixed-price · No surprises
Access Model
One engineer. Full accountability.
€0
Recruitment cost
5–10
Days to first report
vs €8k+
monthly in-house specialist
Read-only
Access — never write permissions
EU + US
Clients served
// Who This Is For

You don't need a full-time cloud team.
You need a trusted expert.

Cybercrafter is built for growing businesses that take security seriously but need to be smart about cost.

Startups & Scale-ups
You've moved fast. Now you need to know what security debt you've accumulated before your first enterprise customer or funding round asks.
No dedicated security staff yet
AWS account growing fast
Enterprise clients starting to ask questions
SMBs Moving to the Cloud
You're migrating or already on AWS, but your team is developers — not security engineers. You want it done right from the start.
No in-house cloud security expertise
Need external assurance
Budget-conscious but security-aware
Teams that Want On-Demand Cover
You have developers and a part-time IT person, but no one owns cloud security. You need an expert available when you need one — without a full headcount.
Security questions but no in-house answers
Incidents happen without warning
Want expert review before big changes
// Services

Three clear services.
No upsell maze.

Start with an assessment, upgrade when you need depth, or keep Cybercrafter on retainer for ongoing peace of mind.

Security Scan
// quick-check
Automated CIS Benchmark scan of your AWS environment. Fast turnaround, clear output. Know your top risks in days — not weeks.
  • Prowler / ScoutSuite automated scan
  • IAM exposure & public resource check
  • Critical findings summary (top 10–15)
  • Risk-ranked PDF report
  • 1-hour debrief call
€900
Fixed price · 3–5 business days · read-only access
Get started →
MOST POPULAR
Full Security Assessment
// deep-dive
Automated scan plus thorough manual review. IAM architecture, network exposure, data security, and logging. Comes with a concrete remediation roadmap you can act on immediately.
  • Everything in Security Scan
  • Manual IAM architecture review
  • VPC, security groups & network exposure
  • S3, RDS & secrets exposure check
  • Logging, monitoring & alerting gaps
  • Prioritised remediation roadmap
  • Executive summary for stakeholders
  • Follow-up Q&A (30 days)
€1,800
Fixed price · 7–10 business days · read-only access
Get started →
IAM & Security Setup
// remediation
Don't just know the problems — fix them. Hands-on IAM hardening and baseline security controls implemented directly in your environment.
  • Root account lockdown & MFA enforcement
  • Least-privilege IAM role redesign
  • GuardDuty + Security Hub activation
  • CloudTrail & Config rules baseline
  • S3 & secrets remediation
  • Alerting to email / Slack
  • Handoff documentation & runbook
€1,400
Fixed price · 5–7 business days · write access required
Get started →
ONGOING SUPPORT
Cloud Security Retainer
// your cloud expert. on demand.
Can't justify a full-time cloud security hire — but need more than a one-off assessment? A retainer gives you a senior AWS expert available every month. Architecture reviews, security questions, pre-launch checks — whatever your team needs that month.
Essential
€800/mo
5 hrs · monthly check-in
Standard ★
€1,400/mo
10 hrs · priority response
Growth
€2,200/mo
18 hrs · dedicated Slack channel
  • Async support via email or Slack
  • Architecture review before changes go live
  • Monthly security posture report
  • Pre-launch cloud security checklist
  • Unused hours don't carry over — stay lean
  • 3-month minimum · cancel with 30 days notice
Discuss a Retainer
// How It Works

Simple. Transparent. Fast.

From first contact to final report in under two weeks. No lengthy procurement or NDAs required to start.

01
Free 30-Min Call
We talk through your environment, your concerns, and what you need. You get a fixed-price proposal the same day — no surprises.
02
Read-Only Access
You create a cross-account IAM role with read-only permissions. No persistent credentials, no write access. You're in full control.
03
Scan & Analysis
Automated tooling runs first. Then manual review validates, contextualises, and prioritises every finding. No raw tool dumps.
04
Report & Debrief
Full written report with clear remediation steps. Debrief call to walk through findings and answer your team's questions.
cybercrafter — security-scan.sh
$ prowler aws --checks iam security networking
Authenticating with cross-account role... OK
Running 220 CIS checks across 3 regions...
──────────────────────────────────────
✗ root account: active access keys found
✗ iam_user_admin: no MFA enabled
⚠ s3/prod-backups: server-side encryption OFF
⚠ sg-0x4f2: port 22 open to 0.0.0.0/0
✓ cloudtrail: multi-region logging active
✓ guardduty: enabled in all regions
──────────────────────────────────────
CRITICAL: 2 HIGH: 9 MEDIUM: 21 LOW: 14
Report saved → cybercrafter-report-2026.pdf
$ _
// About

Senior expertise.
Without the overhead.

I'm Omar — independent cloud architect and security consultant with 18 years in IT — 8 years designing and securing AWS infrastructure. When you work with Cybercrafter, you work directly with me. No account managers, no juniors on your engagement.

8+
Years on AWS — from startup infrastructure to multi-account enterprise landing zones
EU
Hungary-based (CET/CEST) · EU & US clients · calls available Mon–Fri, 09:00–17:00 CET
1:1
Direct access to the expert on every engagement — not a support ticket queue
More information on EU Digital Professions from El-Seaghi Omar

Professionally insured for EU Digital Professions via Exali. Proof of liability insurance available upon request.

// Get in Touch

Let's talk about
your AWS environment.

Free 30-minute call. No commitment, no sales pitch. Just an honest conversation about what you need and whether I can help.

// Availability: Mon–Fri · 09:00–17:00 CET (UTC+1) · Budapest, Hungary

// Pricing Reference
Security Scan€900
Full Assessment€1,800
IAM & Security Setup€1,400
Retainer — Essential€800/mo
Retainer — Standard€1,400/mo
Retainer — Growth€2,200/mo
Hourly (T&M)€85/hr EU · $90/hr US

Privacy Policy

// cybercrafter.cloud · Last updated: March 2026 · GDPR compliant
§1 · Controller

Data Controller

Cybercrafter (egyéni vállalkozó — registered sole trader), Budapest, Hungary.
Registered in Hungary with tax registration on file (adószámmal rendelkező egyéni vállalkozó).
Contact: Contact form

§2 · Hosting

Website Hosting

This website is hosted by Hostinger International Ltd., 61 Lordou Vironos Street, 6023 Larnaca, Cyprus. When you visit the site, your IP address and browser request data are processed by Hostinger's servers for the purpose of delivering the website. Legal basis: Art. 6(1)(f) GDPR — legitimate interest in operating a functional website.

§3 · Contact Form

Contact Form

If you use the contact form on this site, the data you provide (name, email address, message) is transmitted directly via your email client using a mailto: link. No data is stored on our servers as a result of form submission. The data you send is processed solely for the purpose of responding to your enquiry. Legal basis: Art. 6(1)(b) GDPR (pre-contractual communication) or Art. 6(1)(f) GDPR (legitimate interest).

§4 · Booking

Appointment Scheduling (cal.eu)

This website links to a scheduling page hosted by Cal.com / cal.eu. If you click the booking link, you leave this website and are forwarded to cal.eu's servers. Any data you enter there is subject to Cal.com's privacy policy. We receive appointment confirmation details (name, email, selected time) via the cal.eu service. Legal basis: Art. 6(1)(b) GDPR.

§5 · Google Fonts

Google Fonts

This site loads typefaces (Exo 2, Inter, JetBrains Mono) from Google Fonts servers. Your IP address is transmitted to Google LLC in the process. Legal basis: Art. 6(1)(f) GDPR. For details, see Google's Privacy Policy.

§6 · No Analytics

Analytics & Tracking

This website does not use Google Analytics, Meta Pixel, or any other third-party analytics or tracking technology. No cookies are set for tracking or profiling purposes.

§7 · Server Logs

Server Log Files

The hosting provider automatically collects standard server log data: IP address, browser type, operating system, referrer URL, date and time of access. This data is used exclusively for technical operation and security purposes and is not combined with other data sources. Legal basis: Art. 6(1)(f) GDPR.

§8 · Retention

Data Retention

Email correspondence and enquiry data is retained for as long as necessary to fulfil the purpose of communication, then deleted — unless statutory retention obligations apply (e.g. commercial or tax law: typically 7–10 years under Hungarian and EU regulations).

§9 · Your Rights

Your Rights under GDPR

As a data subject you have the right to: access (Art. 15), rectification (Art. 16), erasure (Art. 17), restriction of processing (Art. 18), data portability (Art. 20), and objection (Art. 21). To exercise any of these rights, use the contact form.

You also have the right to lodge a complaint with the Hungarian supervisory authority: Nemzeti Adatvédelmi és Információszabadság Hatóság (NAIH)www.naih.hu.

§10 · Exali Liability Seal

Exali AG Liability Seal

1. Description and scope of data processing

This page uses the Exali AG Liability Seal. The graphic element of the seal is reloaded from the servers of Exali AG. For this purpose, due to the technical design of the Internet, your IP address is processed in order to transmit the graphic to your browser.

If you click on this seal, you leave our website and will be forwarded to the servers of Exali AG. Learn more from Exali's privacy policy.

2. Legal basis for data processing

The legal basis for data processing is Art. 6(1)(f) GDPR (legitimate interest).

3. Purpose of data processing

The data processing serves the purpose of providing evidence of the legally prescribed mandatory information on professional indemnity as per Section 2(11) DL-InfoV in a visually appealing manner.

4. Legitimate interest

Our legitimate interest in data processing arises from the purpose of offering an appealing online presence and fulfilling our information obligations in an appealing manner.